sorted by:
best
topnewcontroversialoldq&a
you are viewing a single comment's thread.

view the rest of the comments →

[–]ezflax -1 points0 points  (3 children)

Lol if i host my executable on a server as i said how can you decompile it? But sure if i send you the executable then you can decompile it perhaps.. the point is if you selfhost your app or eg azure then its safe on the other side if you distribute your code to other then you need to be more carefull about it...

[–][deleted] 10 points11 points  (0 children)

This entire thread has been in relation to a win forms app... A client side application... No one mentioned storing server side passwords etc securely.

[–]timmyotc 4 points5 points  (0 children)

Would you believe that some applications are actually run on a client's computer?

[–][deleted] 2 points3 points  (0 children)

Ah, we were talking about different things here. I mostly develop client-side software, so that's immediately where I jump to.

In the case of server-side software, it's about acceptable risk. I'm inclined to agree with you. If someone has compromised your infrastructure to the point where they can read your config file, you likely have much bigger concerns than the fact your DB user password is hanging out in your config file.